This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: oPSphdTnlazpI6CQYUF5cFIUMOJnMXGZybhQeJU5UXc= Subject key identifier: BE:91:C1:A8:0D:67:5E:90:F4:A7:DD:FD:82:9C:31:43:62:8E:E7:52 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 020E Signing time: Fri 19 Dec 2025 01:31:22 +0000 Manifest this update: Fri 19 Dec 2025 01:31:22 +0000 Manifest next update: Fri 26 Dec 2025 01:31:22 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: Uc3m4N9rFuy4i/r0VLJ61w4IgpYupQ7M57BmOooU148=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: m/OLPsM6ynBix8nuh4bjX0QKg8+81tb5WXXf1UHLuyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Dec 19 01:31:22 2025 GMT Not After : Dec 26 01:31:22 2025 GMT Subject: CN=6944aaea-aadf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:50:22:f7:ad:c7:de:cc:9c:15:b3:11:68:f2: f2:61:0a:1f:84:f2:71:0c:50:55:c6:f1:45:88:10: 05:50:71:43:5f:e5:77:3f:f6:1c:e5:70:d5:2a:ee: ae:6c:85:50:0c:02:20:12:90:81:ad:5c:8d:46:a7: 38:1d:a8:e8:bf:61:1c:d5:4a:82:d7:3a:dc:f3:73: 08:42:22:fd:27:63:05:80:ce:f9:dc:06:4c:08:8f: f7:8e:e2:d7:1d:e7:2c:b3:41:8f:35:73:d1:ac:ec: 0e:3d:ea:74:d7:9b:5d:4a:a4:21:93:bc:67:e7:cb: 42:67:60:9f:71:50:87:fc:9c:cc:fb:8b:c2:54:a7: 7f:de:5e:46:e3:46:aa:e7:4b:1d:61:6c:72:e4:0e: 74:52:ba:6b:4d:37:c9:92:2c:ff:a7:1b:3b:c6:63: 3c:e9:37:fd:83:e0:8f:52:41:43:9e:99:6a:1d:eb: 25:1f:78:e9:37:ae:cf:ac:26:71:e9:5e:f9:4c:a4: 09:62:aa:cf:18:6d:cc:35:35:32:f0:12:6c:7e:d2: 4d:c0:97:96:5e:80:98:5a:d9:b8:90:07:05:96:c3: e9:6d:b8:d9:0e:f7:68:9b:99:93:73:2b:1f:2b:3b: 64:84:e7:73:a3:48:f2:b9:44:a5:ba:55:2d:00:8d: d6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:91:C1:A8:0D:67:5E:90:F4:A7:DD:FD:82:9C:31:43:62:8E:E7:52 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:72:92:ff:49:a6:36:06:ea:d6:bd:92:b5:dd:42:d2:7a:84: bc:86:bc:86:8c:60:64:23:58:e7:8e:7a:27:bd:72:47:b8:f3: c5:9c:e4:d5:51:6b:12:08:4e:d4:f6:8b:40:56:20:19:70:5c: b9:45:dd:75:de:1c:d5:b9:37:8a:ac:4a:39:44:7e:ea:23:c0: 17:a3:c2:59:2a:73:a8:b8:5d:70:f9:cb:1b:38:d3:37:94:13: 43:21:dd:97:76:01:ab:ec:d3:da:63:3f:8e:9d:8e:75:60:9d: 1c:17:55:a7:c5:4f:76:e4:5e:ab:57:85:dc:62:92:30:7a:58: 9d:3a:a6:90:68:ba:1f:36:44:1d:f2:05:5d:16:c2:ad:e8:bc: 10:d6:cf:0c:8f:c5:7d:78:03:42:30:41:44:01:1d:69:3b:2b: df:26:db:30:ab:03:32:a9:19:e7:ce:9c:19:18:09:b0:ce:49: e9:3f:7d:20:c2:6b:7e:92:b2:49:89:38:81:87:e3:80:9d:07: 2f:10:f2:9c:36:a0:1c:f1:4e:06:f5:4a:c6:33:88:07:d1:88: d4:1f:e0:c3:34:e3:a9:e2:2e:7b:5f:9a:44:d9:d4:3d:11:14: 9f:c9:22:b4:cf:52:ff:67:b3:28:14:0a:2b:04:b0:41:16:0d: 74:79:31:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUxMjE5MDEzMTIyWhcNMjUxMjI2MDEzMTIyWjAYMRYwFAYD VQQDDA02OTQ0YWFlYS1hYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFAi963H3sycFbMRaPLyYQofhPJxDFBVxvFFiBAFUHFDX+V3P/Yc5XDVKu6u bIVQDAIgEpCBrVyNRqc4Hajov2Ec1UqC1zrc83MIQiL9J2MFgM753AZMCI/3juLX Hecss0GPNXPRrOwOPep015tdSqQhk7xn58tCZ2CfcVCH/JzM+4vCVKd/3l5G40aq 50sdYWxy5A50UrprTTfJkiz/pxs7xmM86Tf9g+CPUkFDnplqHeslH3jpN67PrCZx 6V75TKQJYqrPGG3MNTUy8BJsftJNwJeWXoCYWtm4kAcFlsPpbbjZDvdom5mTcysf KztkhOdzo0jyuUSlulUtAI3W5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6RwagN Z16Q9Kfd/YKcMUNijudSMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIcpL/SaY2BurWvZK13ULSeoS8hryGjGBkI1jnjnonvXJHuPPFnOTV UWsSCE7U9otAViAZcFy5Rd113hzVuTeKrEo5RH7qI8AXo8JZKnOouF1w+csbONM3 lBNDId2XdgGr7NPaYz+OnY51YJ0cF1WnxU925F6rV4XcYpIwelidOqaQaLofNkQd 8gVdFsKt6LwQ1s8Mj8V9eANCMEFEAR1pOyvfJtswqwMyqRnnzpwZGAmwzknpP30g wmt+krJJiTiBh+OAnQcvEPKcNqAc8U4G9UrGM4gH0YjUH+DDNOOp4i57X5pE2dQ9 ERSfySK0z1L/Z7MoFAorBLBBFg10eTFZ -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:41 2025 by rpki-client